Token sharing system and method
First Claim
Patent Images
1. An authentication system, comprising:
- a token constructed and arranged to have an identifier and to generate a one time password;
a one time password validation server constructed and arranged to validate the one time password generated by the token, the validation server having a network address;
a token lookup service constructed and arranged to correlate a token identifier with a network location of the validation server;
a resource validation server constructed and arranged to validate at least a first authentication factor provided by a user of the token, and to send a request for the location of the one time password validation server to the token lookup server if the first factor is successfully validated and to send a one time password validation request to the one time password validation server.
3 Assignments
0 Petitions
Accused Products
Abstract
A scalable system and method for authenticating entities such as consumers to entities with a diverse set of authentication requirements, such as merchants, banks, vendors, other consumers, and so on. An authentication credential such as a token can be shared among several resources as a way to authenticate the credential owner.
114 Citations
6 Claims
-
1. An authentication system, comprising:
-
a token constructed and arranged to have an identifier and to generate a one time password;
a one time password validation server constructed and arranged to validate the one time password generated by the token, the validation server having a network address;
a token lookup service constructed and arranged to correlate a token identifier with a network location of the validation server;
a resource validation server constructed and arranged to validate at least a first authentication factor provided by a user of the token, and to send a request for the location of the one time password validation server to the token lookup server if the first factor is successfully validated and to send a one time password validation request to the one time password validation server. - View Dependent Claims (2, 3)
-
-
4. A token lookup server, including:
-
a processor;
a memory coupled to the processor, the processor and memory constructed and arranged to store a network address of a one time password validation server and a token identifier, wherein the one time password validation server is constructed and arranged to validate a one time password generated by a token that corresponds to the token identifier. - View Dependent Claims (5)
-
-
6. A method for authentication, including:
-
receiving at a token lookup service a request for a network address of a one time password validation server, the request including a token identifier;
determining a network address corresponding to a once time password validation server and the received token identifier; and
sending the network address in response to the request.
-
Specification